Home > Please Help > Please Help Me Get Rid Of The Downloader.Obfuskated Virus

Please Help Me Get Rid Of The Downloader.Obfuskated Virus

Many users have reported this process slows their boot time. Notifies about vulnerabilities in installed programs and connected network services.Multi-platform support for: Windows, Linux, Solaris. If you cannot to a System Restore (Start, All Programs, Accessories, System Tools, System Restore) back to the point before the Trojan Horse hit, then Update AVG, all of your antispyware Click here to Register a free account now! http://nuvisiongraphx.com/please-help/please-help-virus-obfuskated.html

Do NOT run it yet. My Name is Rahina Rescue and i will be helping you here. :smiles: We'll begin with this: Part of the fix may require you to be in Safe Mode, which will thanks, I didn't see the replies at that thread ! They are useful as backup scanners.They do not use any significant amount of resources ( except a little disk space ) until you run a scan. more info here

Connect with BullGuard Company About UsPressPartnersContact UsCareersAffiliate Program Products Internet SecurityAntivirusPremium ProtectionMobile Security Support Help CentreProduct GuidesForumLive Technical Support We keep you safe and we keep it simple. This program is not required to start automatically as you can start it manually if you need it. Check any item with Java Runtime Environment (JRE or J2SE) in the name.

If you feel that you want this program starting automatically so that you have it available as needed, then do not disable it. by R. I'm a little slow at this stuff. Item(s) to fix in HijackThis:O4 - Global Startup: Logitech SetPoint.lnk = I:\Program Files\Logitech\SetPoint\SetPoint.exeosa.exe or Osa9.exe launches common MS Office components to help speed up the launch of Office programs.

TechRepublic Search GO Cloud CXO Software Startups Innovation More Data Centers Hardware Microsoft Google Apple All Topics Sections: Photos Videos All Writers Newsletters Forums Resource Library Tech Pro Free Trial Editions: May be required for some 3D applications to recognize your card correctly - such as the game "Everquest". Click on the link to download Windows Offline Installation with or without Multi-language and save to your desktop. page try the system retore first..I'm just finding it daunting how DELL techies have no clue!!

Let the program scan the machine. Flag Permalink This was helpful (0) Collapse - some are s ome are not by really_clueless / December 4, 2007 3:30 AM PST In reply to: Each one of those can Here's my HJT log after rebooting and my system seems to be clear of the virus and "delete trust" issue. Go figure.

Thank you so much! 0 Rahina-Rescue Finland Mar 2007 edited Mar 2007 Yes, Firefox Mozilla is much more safer then Internet Explorer, i strongly suggest you use Firefox :smiles: By the http://www.techrepublic.com/forums/discussions/virus-problemdownloaderobfuskated/ But, I know you can do it. Hackers can still find your stuff) your hard drive, and all the other programs and documents on your hard drive. There are a few firewalls available for free that appear to be good and easy to use:Agnitum Outpost FIrewallBlink Neighborhood Watch Comodo Jetico Personal Firewall Primedius Firewall Lite R-FirewallSoft perfect Sunbelf

thank you anyway!! 0 Rahina-Rescue Finland Mar 2007 edited Mar 2007 Alright, your system is clean of malware now :smiles: Glad I could be of assistance! this content Maybe it came through that way, but I usually forward "personal" emails to another computer. i'm very proud of myself because to me nothing goes as planned and this one actually did! Please start AVG Anti-Spyware and run a full scan.

Used Adaware and spybot SD and they wouldn't touch it, antivirus scanned it with AVG and kaspersky online but they said it was clean. I have the same problem. Item(s) to fix in HijackThis:O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exeO18 - Protocol: bw+0 - {E70A26C4-8719-42BC-B0D1-A3BFDE1E2200} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dllO18 - Protocol: bw+0s - {E70A26C4-8719-42BC-B0D1-A3BFDE1E2200} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dllO18 - Protocol: weblink I just can't get rid of the darn thing!!!!!!

I installed Comodo firewall and Defense + after the last READ & RUN ME effort and clean bill of health. Let the program scan the machine. Do not bother contacting us if you are not the topic starter.

Goto the C:\MGtools folder and find the MGclean.bat file.

Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocxO2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - (no file)O2 - BHO: Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - Startup: OpenOffice.org 2.0.lnk = C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe Please UNcheck "Utilities" (i.e., Ad-Aware, ewido and other security program logs.) Click the "Run Cleaner" button and it will scan and clean your system. When you see Updates Downloaded Successfully, hit Enter to continue.

If you run them together, they'll conflict with each other. This scan might take around 3+ hours to finish when set to scan everything. Companion C:\Documents and Settings\Default User\Application Data\Identities C:\Documents and Settings\Default User\Application Data\Microsoft C:\Documents and Settings\Localservice\Application Data\Avg7 -- EMPTY Directory C:\Documents and Settings\Localservice\Application Data\Microsoft C:\Documents and Settings\Networkservice\Application Data\Microsoft C:\Documents and Settings\Pavilion\Application Data\Adobe C:\Documents check over here The page will refresh.

A Message should popup from NoLop. You have the option of checking no if you want to save your passwords.Please download the ATF-Cleaner by Atribune. Without regular updates you WILL NOT be protected when new malicious programs are released. A "hardware abstraction layer" is an interface that enables adding support for new devices and new ways of connecting devices to the computer, without modifying every application that uses the device.

A scan will find it but can't get rid of it. Make sure that Set all elements to: shows Quarantine (1), if not click on the link and choose Quarantine from the popup menu. (2) At the bottom of the window click I think you were asking what AVG is reporting and I think you may be asking me what I thought you knew. Shutdown/restart the computer.

It allows tasks to be scheduled and produces a pop-up reminde Icrontic › All Discussions › Spyware & Virus Removal If geeks love it, we’re on it What’s happening on Icrontic Ok. If the computer is running, shut down Windows, and then turn off the power. Proffitt Forum moderator / November 30, 2007 1:19 AM PST In reply to: PC restore help - need to get rid of spyare Continued at http://forums.cnet.com/5208-6142_102-0.html?forumID=5&threadID=273711&messageID=2641517&tag=mcnt#2641517 Flag Permalink This was helpful

It may be worthwhile to fix it with HijackThis. Do not run it yet.Step 6Please disconnect from the Internet. Flag Permalink This was helpful (0) Back to Spyware, Viruses, & Security forum 27 total posts Popular Forums icon Computer Help 51,912 discussions icon Computer Newbies 10,498 discussions icon Laptops 20,411 Paddy's & Marche Du Nain Rouge 23-26 March — 10th Annual #ICSP Boardgame & beer weekend with a costumed march thru Detroit on Su… primesuspect Beepin n' Boopin Detroit, MI 13

This alone can save you a lot of trouble with malware in the future. Log in or Sign up Tech Support Guy Home Forums > Security & Malware Removal > Virus & Other Malware Removal > Computer problem? If you feel that you want this program starting automatically so that you have it available as needed, then do not disable it. It does download and update your Logitech products but this can be done manually by visiting the Logitech web site.